| Commit message (Collapse) | Author | Age | ||
|---|---|---|---|---|
| ... | ||||
| * | Added Psiphon detection patterns. See #566 and #1099. (#1631) | Toni | 2022-07-04 | |
| | | | | | | * The traces are not up to date, but this is the best we got so far. Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Added i3D and RiotGames protocol dissectors. (#1609) | Toni | 2022-07-03 | |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | TargusDataspeed: avoid false positives (#1628) | Ivan Nardi | 2022-07-03 | |
| | | | | | | TargusDataspeed dissector doesn't perform any real DPI checks but it only looks at the TCP/UDP ports. Delete it, and use standard logic to classify these flows by port. | |||
| * | Skinny: rework and improve classification (#1625) | Ivan Nardi | 2022-07-03 | |
| | | ||||
| * | Skype_Teams, Mining, SnapchatCall: fix flow category (#1624) | Ivan Nardi | 2022-07-03 | |
| | | ||||
| * | Fix category for mail sessions (#1621) | Ivan Nardi | 2022-07-03 | |
| | | | | Close #629 | |||
| * | TLS: add support for old DTLS versions and for detection of mid-sessions (#1619) | Ivan Nardi | 2022-07-03 | |
| | | ||||
| * | Generate profiling results as PNG. | Toni Uhlig | 2022-07-03 | |
| | | | | | | | * use -ltcmalloc_and_profiler and try to get rid of LD_PRELOAD=/usr/lib/x86_64-linux-gnu/libprofiler.so Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | gprof test/CI integration | lns | 2022-07-03 | |
| | | | | | | Signed-off-by: lns <matzeton@googlemail.com> Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Improved TFTP. Dissect Read/Write Request filenames. (#1617) | Toni | 2022-07-03 | |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Fix byte-order issue during ndpiReader tcp/udp src/dst port serialization. ↵ | Toni | 2022-07-03 | |
| | | | | | | | | | Fixes #1608. (#1614) * fixed possible memory leak caused by an invalid call to `node_proto_guess_walker()` during serialization * execute serialization code while running regression tests Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Added Cloudflare WARP detection patterns. (#1615) (#1616) | Toni | 2022-07-02 | |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Fixed SMTP default port 587 | Luca Deri | 2022-07-02 | |
| | | ||||
| * | Added TunnelBear VPN detection patterns. (#1615) | Toni | 2022-07-01 | |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | sync unit tests (#1612) | Toni | 2022-06-30 | |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Fix after the protocol name update | Luca Deri | 2022-06-28 | |
| | | ||||
| * | Enhanced TLS risk info reported to users | Luca Deri | 2022-06-28 | |
| | | ||||
| * | Fix compilation and sync unit tests results (#1606) | Ivan Nardi | 2022-06-20 | |
| | | ||||
| * | Added unidirectional traffic flow risk | Luca Deri | 2022-06-20 | |
| | | ||||
| * | Improved SOAP via HTTP. (#1605) | Toni | 2022-06-18 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Improved GenshinImpact protocol dissector. (#1604) | Toni | 2022-06-18 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Added collectd dissector (again). (#1601) | Toni | 2022-06-17 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Improved IPSec/ISAKMP detection. (#1600) | Toni | 2022-06-16 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Added new test pcaps | Luca | 2022-06-15 | |
| | | ||||
| * | Add support for PIM (Protocol Indipendent Multicast) protocol (#1599) | Ivan Nardi | 2022-06-15 | |
| | | | | Close #1598 | |||
| * | Improved WhatsApp detection. (#1595) | Toni | 2022-06-14 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | DNS: fix TTL check and sync unit test results (#1594) | Ivan Nardi | 2022-06-14 | |
| | | ||||
| * | Updated DNS alert triggered only with TTL == 0 | Luca Deri | 2022-06-14 | |
| | | ||||
| * | Restored ndpi_set_proto_defaults() prototype | Luca Deri | 2022-06-13 | |
| | | | | | Updated test results | |||
| * | Improved DNS traffic analysis | Luca Deri | 2022-06-13 | |
| | | | | | Added ability to identify application and network protocols | |||
| * | Added gprof CPU/HEAP profiling support. (#1592) | Toni | 2022-06-12 | |
| | | | | | | * Some small auto{conf,make} improvements Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Added Pragmatic General Multicast (PGM) protocol detection | Luca Deri | 2022-06-08 | |
| | | ||||
| * | Dissect host line if SSDP contains such. (#1586) | Toni | 2022-06-07 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Reimplemented 1kxun application protocol. (#1585) | Toni | 2022-06-06 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Fixed syslog false negatives. (#1582) | Toni | 2022-06-05 | |
| | | | | | | - RSH vs Syslog may still happen for midstream traffic Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Updated test results | Luca Deri | 2022-06-05 | |
| | | ||||
| * | Added RSH dissector. Fixes #202. (#1581) | Toni | 2022-06-04 | |
| | | | | | | | - added syslog false-positive pcap that was missing in 09fbe0a64a11b08a35435f516e9a19f7e0c20d7c - added NDPI_ARRAY_LENGTH() macro, usable on `type var[]` declarations Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Add support for GoTo products (mainly GoToMeeting) (#1580) | Ivan Nardi | 2022-06-04 | |
| | | | | There is some overlap with Citrix protocol. | |||
| * | Fixed syslog false positives. (#1577) | Toni | 2022-06-03 | |
| | | | | | | | | * syslog: removed unnecessary/unreliable printable string check * added `ndpi_isalnum()` * splitted `ndpi_is_printable_string()` into `ndpi_is_printable_buffer()` and `ndpi_normalize_printable_string()` Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Force roaring bitmap to use ndpi memory wrappers. (#1569) | Toni | 2022-05-31 | |
| | | | | | | | | | GCC analyzer won't complain about possible use-after-free (false positive). * tests/do.sh prints word diff's only once and not the same over and over again * sync unit tests Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Updated risk results | Luca Deri | 2022-05-30 | |
| | | ||||
| * | Updated README.md (#1562) | Toni | 2022-05-30 | |
| | | | | | | | | * make check great again (not so much) * make doc/doc-view * CI updates Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Support word diff for tests/do.sh for better readability. (#1565) | Toni | 2022-05-30 | |
| | | | | | | * Sync unit tests Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Prohibit MPEG-DASH to set HTTP as application protocol. (#1560) | Toni | 2022-05-30 | |
| | | | | Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Certificate timestamps should be printed in UTC (#1563) | Ivan Nardi | 2022-05-30 | |
| | | | | This way, the CI results are consistent | |||
| * | Fixed dispay bug for risk_info | Luca Deri | 2022-05-30 | |
| | | ||||
| * | Updated tests results | Luca Deri | 2022-05-30 | |
| | | | | | Code cleanup | |||
| * | Dazn: add support for Dazn streaming service (#1559) | Ivan Nardi | 2022-05-29 | |
| | | | | Update .gitignore file | |||
| * | Added MPEG-DASH dissector. Fixes #1223. (#1555) | Toni | 2022-05-29 | |
| | | | | | | | * Improved HTTP POST detection * Refactored subprotocol detection Signed-off-by: lns <matzeton@googlemail.com> | |||
| * | Fixed HTTP lower/upper protocol mess for Aimini/IPP. (#1557) | Toni | 2022-05-28 | |
| | | | | | | * If HTTP was already detected, there is no need to overwrite the detection again Signed-off-by: lns <matzeton@googlemail.com> | |||